Unrated severityNVD Advisory· Published Jan 13, 2012· Updated Apr 29, 2026

CVE-2011-4057

Description

Wibu-Systems AG CodeMeter Runtime 4.30c, 4.10b, and possibly other versions before 4.40 allows remote attackers to cause a denial of service (CodeMeter.exe crash) via certain crafted packets to TCP port 22350.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Wibu-Systems CodeMeter Runtime versions before 4.40 crash via crafted packets on TCP port 22350, enabling denial of service.

Vulnerability

Wibu-Systems CodeMeter Runtime versions 4.30c, 4.10b, and possibly other versions before 4.40 contain a vulnerability in handling TCP packets on port 22350. Sending a specially crafted packet to this port causes the CodeMeter.exe process to crash [1][3].

Exploitation

An unauthenticated remote attacker can exploit this vulnerability by sending a specially crafted packet to TCP port 22350 of a system running an affected version of CodeMeter Runtime. No authentication or user interaction is required [1].

Impact

Successful exploitation results in a denial of service (DoS) condition, as the CodeMeter.exe process crashes, disrupting the application's availability [1]. There is no impact on confidentiality or integrity.

Mitigation

Upgrade to CodeMeter Runtime version 4.40 or later, which contains the fix [3][4]. As an interim workaround, restrict network access to TCP port 22350 to trusted hosts only [1].

References

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Wibu/Codemeter Runtime5 versions
cpe:2.3:a:wibu:codemeter_runtime:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:wibu:codemeter_runtime:*:*:*:*:*:*:*:*range: <=4.30d
- cpe:2.3:a:wibu:codemeter_runtime:4.10b:*:*:*:*:*:*:*
- cpe:2.3:a:wibu:codemeter_runtime:4.20a:*:*:*:*:*:*:*
- cpe:2.3:a:wibu:codemeter_runtime:4.30c:*:*:*:*:*:*:*
- (no CPE)range: <4.40

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/47497nvdVendor Advisory
www.kb.cert.org/vuls/id/659515nvdUS Government Resource
www.kb.cert.org/vuls/id/MAPG-8MYNFLnvdUS Government Resource
jvn.jp/en/jp/JVN78901873/index.htmlnvd
jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-000003.htmlnvd
osvdb.org/78223nvd
www.securityfocus.com/bid/51382nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000